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CHAPTER 110/009206 



Preliminary Classification: 
Proposed Class: 
Subclass: 

NOTE: "Afl applicants are requested to include a preliminary classification on newJy filed patent 

applications. The preliminary classificatfon, preferably class and subclass designations, should be 
identified in the upper right-hand comer of the letter of transmittal accompanying the application 
papers, for example 'Proposed Class 2, subclass 129/ " M.P.E.P,, § 601, 7th ed. 



TRANSMITTAL LETTER 
TO THE UNITED STATES ELECTED OFFICE (EO/US) 
(ENTRY INTO U.S. NATIONAL PHASE UNDER CHAPTER H) 



INTERNATIONAL APPUCATION NO. 
PCT/ 



prT/iKnn/i97?i 
rrruE of invention 



INTERNATIONAL FlUNG DATE 

9 May 2000 



PRIORITY DATE CLAIMED 

13 May 1999 



TrrLE OF INVENTION 

TECHNIQUE FOR SECURE REMOTE CONFIGURATION OF A SYSTEM 



APPLIGANT(S) 

George M. BROOKNER 



Box PCX 

Assistant Commissioner for Patents 
Washington D.C. 20231 
ATTENTION: EO/US 



CERTIFICATION UNDER 37 C.F.R. §§ 1.8(a} and 1.10* 

(When using Express f^ail, the Express Mail label numtyer is mandatory; 
Express Mail certification is optional,) 

I hereby certify that, on the date shown below, this correspondence is being: 

MAILING 

g| deposited with the United States Postal Service in an envelope addressed to the Assistant Commissioner 
for Patents, Washington, D.C. 20231 

37 C.F.R. § 1.8(a) 37 C.F.R. § 1.10 * 

□ with sufficient postage as first class malL K as "Express Mail Post Office to Addressee" 

Mailing Label No. . EL627_51Q&MU5 (mandatonf) 

TRANSMISSION 

□ facsimile transmitted to the Patent and Trademarl^ Office, (703) . 



Date: «Jto£fimbfir-B> 2001 



Signature 

Shauna Murphy 




(f^pe or print name of person certifying) 



* Only the date of filing (§ 1,6) will be the date used in a patent term adjustment calculation, although the date 
on any certificate of mailing or transmission under § 1,6 continues to be taken into account in determining 
timeliness. See § 1.703(f). Consider "Express Mail Post Office to Addressee" (§ 1. 10) or facsimile transmission 
(§ 1.6(d)) for the reply to be accorded the earliest possible filing date for patent term adjustment calculations. 
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NOTB: To avoid abandonment of the appUcation, the applicant shall furnish to the USPTO, not later than 20 
months from the priority date: (1) a copy of the Intemationai applfcaVon, unless it has been previously 
communicated by the Intemational Bureau or unless it was originally filed in the USPTO; and (2) the 
basic national fee (see 37 CF.R, § 1,492(a)). The SO-month time limit may not be extended. 37 O.F.R. 
§ 7.495. 

WARNING: Where the items are those which can be submitted to complete the entry of the intemational 
application into the national phase are subsequent to 30 months from the priority date the 
application is still considered to be in the intemational state and if mailing procedures are utilized 
to obtain a date the express mail procedure of 37 C.F.R. § 7.70 must be used (since intemational 
application papers are not covered by an ordinary certificate of mailing — See 37 CF.R. § 1.8, 

NOTE: Documents and fees must be cfearty identified as a submission to enter the national state under 35 
t/.S.C. § 371 otherwise the submission will be considered as being made under 35 U,S.C. § 111. 37 
C.FR. § 1.494(f), 

\. Applicant herewith submits to the United States Elected Office (EO/US) the following 
Items under 35 U.S.C. § 371: 

a. |x| "This express request to immediately begin national examination procedures 

(35 U.S.C. § 371(f)). 

b. Kl The U.S. National Fee (35 U.S.C. § 371(c)(1)) and other fees (37 C.F.R. § 1.492) 

as Indicated below: 
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2. Fees "^^^^ ^^'^ ^ 0 6 IwV 



CLAIMS 
FEE 


{1) FOB 


(2) NUMBER 
FILED 


(3) NUMBER 
EXTRA 


(4) RATE 


(5) CALCULA- 
TIONS 


□* 


TOTAL 
CLAIMS 












35 


35 -20- 


15 


X $18.00 = 


^ 270.00 




INDEPENDENT 
CLAIMS 












6 


6 = 


3 


^$84.00 = 


252.00 




MULTIPLE DEPENDENT CLAIM(S) Of applicable) 


^ 280.00 = 




BASIC FEE** 


0 U.S. PTO WAS INTERNATIONAL PRELIMINARY EXAMINATION 
AUTHORITY 

Where an International preliminary examination fee as set forth 
in § 1.482 has been paid on the international application to the 
U.S. PTO: 

States that the criteria of novelty, inventive step (non- 
obviousness) and industrial activity, as defined in POT 
Article 33(1) to (4) have been satisfied for all the 
claims presented in the application entering the 

□ and the above requirements are not met (37 C.F.R. 
§ 1 492(a)(1)) . . { 710 00 


100.00 




□ U.S. PTO WAS NOT INTERNATIONAL PRELIMINARY 
EXAMINATION AUTHORITY 

Where no international preliminary examination fee as set forth 
in § 1.482 has been paid to tfie U.S. PTO, and payment of an 
international search fee as set forth in § 1.445(a)(2) to the U.S. 
PTO: 

□ has been paid (37 C.F.R. § 1.492(a)(2)) .. .. $ 740.00 

□ has not been paid (37 C.F.R. § 1.492(a)(3)) ..$1,040.00 

□ where a search report on the international application 
has been prepared by the European Patent Office or 
the Japanese Patent Office (37 C.F.R. 

§ 1.492(a)(5)) $ 890.00^ 






Total of above Calculations 


622.00 


SMALL 
ENTITY 


Reduction by 1/2 for filing by small entity, If applicable. Assertion 
must be made, (note 37 C.F.R. § 1J27) 


- 




Subtotal 






Total National Fee 


$ 

622.00 




Fee for recording the enclosed assignment document $40.00 (37 
C.F.R. § 1.21(h)). (See Item 13 below). See attached ''ASSIGNMENT 
COVER SHEET*. 




TOTAL 


Total Fees enclosed 


^ 622.00 
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*See attached Preliminary Amendment Reducing the Number of Claims. 

O Attached is a f3 check □ money order in the amount of $ fi^^ nn 

□ Authorization is hereby made to charge the amount of $ 

Q to Deposit Account No. 16-1350 

□ to Credit card as shown on the attached credit card Information authoriza- 
tion fonn PTO-2038, 

WARNING: Credit card information should not be included on this form as it may become public, 

Q Charge any additional fees required by this paper or credit any overpayment 
in the manner authorized above. 

A duplicate of this paper is attached. 

"^WARNING: "To avoid abandonment of the application the applicant shall furnish to the United States Patent 
and Trademark Office not later than the expiration of 30 months from the priority date: * " * (2) 
the basic national fee (see § 1, 492(a)). The 30-month time limit may not be extended." 37 C.F.R. 
§ 1A95(b). 

WARNING: If the translation of the international application and/or the oath or declaration have not been 
submitted by the applicant within thirty (30) months from the priority date, such requirements may 
be met within a time period set by the Office, 37 C.F.R § 1.495(b)(2). The payment of the surcharge 
set forth in § 1.492(e) is required as a condition for accepting the oath or declaration later than 
thirty (30) months after the priority date. The payment of the processing fee set forth in § 1.492(f} 
is required for acceptance of an English translation later than thirty (30) months after the priority 
date. Failure to comply with these requirements will result in abandonment of the application. The 
provisions of § 1.136 apply to the period which is set Notice of Jan. 3, 1993, 1147 O.G. 29 to 
40. 

□ Assertion of Small Entity Status 

□ Applicant hereby asserts status as a small entity under 37 C.F.R. § 1.27, 

NOTE: 37 CF.R. § 1.27(c) deals with the assertion of small entity status, whether by a written specific 
declaration thereof or by payment as a small entity of the basic filing fee or the fee for the entry into 
the national phase as states: 

"(c) Assertion of small entity status. Any party (person, small business concern or nonprofit 
organization) should make a determination, pursuant to paragraph (f) of this section, of entitlement 
to be accorded small entity status based on the definitions set forth in paragraph (a) of this section, 
and must, in order to establish small entity status for the purpose of paying small entity fees, actually 
make an assertion of entitlement to small entity status, in the manner set forth in paragraphs (c)(1) 
or (c)(3) of this section, in the application or patent in which such small entity fees are to be paid. 

(1) Assertion by writing. Small entity status may be established by a written assertion of entitlement 
to small entity status. A written assertion must: 

0) Be cleariy identifiable; 

(ii) Be signed (see paragraph (c)(2) of this section); and 

(lii) Convey the concept of entitlement to small entity status, such as by stating that applicant 
is a small entity, or that small entity status is entitled to be asserted for the application or patent. 
While no spedfic words or wording are required to assert small entity status, the intent to assert 
small entity status must be cleariy indicated in order to comply with the assertion requirement 

(2) Parties who can sign and file the written assertion. The written assertion can be signed by: 

(t) One of the parties identified in §§ 1.33(b} (e.g., an attorney or agent registered with the Office), 
§§ 3.73(b) of this chapter notwithstanding, who can also fife the written assertion; 

(ii) At least one of the individuals identified as an inventor (even though a §§ 1.63 executed oath 
or declaration has not been submitted), notwithstanding §§ 1.33(b)(4), who can also file the 
written assert/on pursuant to the exception under §§ 1.33(b) of this part; or 

ftii) An assignee of an undivided part interest, notwithstanding §§ 1.33(b)(3) and 3, 73(b) of this 
chapter, but the partial assignee cannot file the assertion without resort to a party identified under 
§§ 1.33(b) of this part. 
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(3) Assertion by payment of the smaff entity basic fiiing or basic national fee. The payment, by any 
party, of the exact amount of one of the smaif entity basic filing fees set forth in §§ h16(a), (f), 
(g), (h), or (k), or one of the small entity basic national fees set forth in §§ 1,492(a)(1), (a)(2), (a)(3), 
(a)(4), or (a)(5), will be treated as a written assertion of entitlement to small entity status even if the 
type of basic filing or basic national fee is inadvertently selected in error. 

(i) If the Office accords small entity status based on payment of a small entity basic Mng or basic 
national fee under paragraph (c)(3) of this section that is not applicable to thai application, any 
balance of tfie small entity fee that is applicable to that application will be due along with the 
appropriate surcharge set forth in §§ 1,1 6(e), or §§ 1.16(1), 

(ii) The payment of any small entity fee other than those set forth in paragraph (c)(3) of this section 
(whether in the exact fee amount or not) will not be treated as a written assertion of entitlement 
to small entity status and will not be sufficient to establish smafi entity status in an application 
or a patent. " 

3. IxJ A copy of the International application as filed (35 U.S.C. § 371(c)(2)): 

NOTB: Section 1.495 (b) was amended to require that the basic national fee and a copy of the international 
application must be filed with the Office by 30 months from the priority date to avoid abandonnmnt 
*7?7e International Bureau normally provides the copy of the international application to the Office in 
accordance with PCT Article 20. At the same time, the International Bureau notifies applicant of the 
communication to the Office. In accordance with PCT Rule 47. 1, that notice shall be accepted by all 
designated offices as conclusive evidence that the communication has duly taken place. Thus, if the 
applicant desires to enter the national stage, the applicant normally need only check to be sure the 
notice from the International Bureau has tteen received and then pay the basic national fee by 30 months 
from the priority date." Notice of Jan. 7, 1993, 1147 O.G. 29 to 40, at 35-36. See item 14c below, 

a. g3 is transmitted herewith. 

b. B is not required, as the application was filed with the United States 

Receiving Office. 

c. Si has been transmitted 

I. 0 by the International Bureau. 

Date of mailing of the application (from form PCT/1B/308): 

11/23/00 

ii. □ by applicant on (Date) 

4. Sa A translation of the International application into the English language 

(35 U.S-C. § 371(c)(2)): 

a. □ is transmitted herewith. 

b. {x3( is not required as the application was filed in English. 

c. □ was previously transmitted by applicant on (Date) 

d. □ will follow. 
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6. El Amendments to the claims of the International application under PCX Article 19 
(35 U.S.a § 371(c)(3)): 

NOTE: The Notice of January 7, 1993 points out that 37 C.F.R. § 1, 495(a) was amended to clarify the existing 
and continuing practice that PCT Article 19 amendments must be submitted by 30 months from the 
priority date and this deadline may not be extended. The Notice further advises that: *'The failure to 
do so will not result in (oss of the subject matter of the PCT Article 19 amendments. Applicant may 
submit that subject matter in a preliminary amendment filed under section 1.121, In many cases, filing 
an amendment under section 1.121 is preferable since grammatical or idiomatic errors may be 
corrected." 1147 O.G. 29-40, at 36. 

a. □ are transmitted herewith. 

b. □ have been transmitted 

i. □ by the Intemationai Bureau. 

Date of mailing of the amendment (from form PCT/1 B/308): 



ii. □ by applicant on (Date) 

c. joJ have not been transmitted as 

i. (gj applicant chose not to make amendments under PCT Article 19. 

Date of mailing of Search Report (from fomi PCT/ISA/210.): 

8/23/00 

ii. □ the time limit for the submission of amendments has not yet 

expired. The amendments or a statement that amendments have 
not been made will be transmitted before the expiration of the time 
limit under PCT Rule 46.1. 

6. S A translation of the amendments to the claims under PCT Ast\c\e 19 

(38 U.S.C. § 371(c)(3)): 

a. □ is transmitted herewith. 

b. □ Is not required as the amendments were made in the English language. 

c. j0 has not been transmitted for reasons indicated at point 5(c) above. 

7. [xl A copy of the Intemationai examination report (PCT/lPEA/409) 

£3 is transmitted herewith. 

□ is not required as the application was filed with the United States 
Receiving Office. 

8. □ Annex(es) to the intemationai preliminary examination report 

a. □ is/are transmitted herewith. 

b. □ is/are not required as the application was filed with the United States 

Receiving Office. 

9. □ A translation of the annexes to the international preliminary examination report 

a. □ is transmitted herewith. 

b. □ is not required as the annexes are in the English language. 
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10. a An oath or declaration of the inventor (35 U.S.C. § 371(4^]pfi§S^l#^¥^? 0 ^ 2G01 

35 U.S.C. § 115 

a. □ was previously submitted by applicant on (Date) 

b. □ is submitted herewith, and such oath or declaration 

i. □ is attached to the application. 

ii. □ identifies the application and any amendments under PCX Article 

19 that were transmitted as stated in points 3(b) or 3(c) and 5{b); 
and states that they were reviewed by the Inventor as required by 
37 C.F.R. § 1.70. 

c. Kl will follow. 

II. Other document(s) or information included: 

11. IB An International Search Report (PCT/ISA/210) or Declaration under 

PCT Article 17(2)(a): 

a. £2 is transmitted herewith. 

b. 13 has been transmitted by the International Bureau. 

Date of mailing (from fomn PCT/IB/308): n/P3/nn 

c. □ is not required, as the application was searched by the United States 

International Searching Authority. 

d. □ will be transmitted promptly upon request. 

e. □ has been submitted by applicant on . (Date) 

12. 51 An Information Disclosure Statement under 37 CF.R. §§ 1.97 and 1.98: 

a. g] Is transmitted herewith. 
Also transmitted herewith is/are: 

5P Form PTO-1449 (PTO/SB/08A and 08B). 
Mi Copies of citations listed. 

b. □ will be transmitted within THREE MONTHS of the date of submission 

of requirements under 35 U.S.C. § 371(c). 

c. □ was previously submitted by applicant on (Date) 

13. □ An assignment document is transmitted herewith for recording. 

A separate □ "COVER SHEET FOR ASSIGNMENT (DOCUMENT) ACCOMPA- 
NYING NEW PATENT APPLICATION" or □ FORM PTO 1 595 is also attached. 
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14* 0 Additional documents: 

a. Copy of request (PCT/RO/101) 

b. 0 International Publication No, WQ Q0/7Q5 Q3 

i. M Specification, claims and drawing 

ii. □ Front page only 

c. U Preliminary amendment (37 C.RR. § 1.121) 

d. lat other 

PCT/RO/105; PCT/RQ/106; PCT/RO/146; PCT/RO/101; PCT/I$A/202; PCT/DO/E O/901 (a) 
PCT/RO/102; PCT/IB/301; PCT/I$A/220;PCT/IPEA/4Ql;PCT/IB/304; PCT/IB/3 06; 
P CT/IPEA/4Q2: PCT/lB/308; PCT/IB/332; PCT/IPEA/416; Written Opinion 
The above checked items are being transmitted 

a. 53 before 30 months from any claimed priority date. 

b. □ after 30 months. 

Certain requirements under 35 U.S.C. § 371 were previously submitted by the 
applicant on , namely: 

^ 



15. GD 

16. □ 



AUTHORIZATION TO CHARGE ADDITIONAL FEES 

WARNING: Accurately count claims, especially multiple dependant claims, to avoid unexpected high charges 
if extra claims are authorized. 

NOTB: "A wntten request may be submitted in an application that is an authorization to treat any concurrent 
or future reply, requiring a petition for an extension of time under this paragraph for its timely submission, 
as incorporating a petition for extension of time for the appropriate length of time. An authorization to 
charge ail required fees, fees under § 1.17, or all required extension of time fees will be treated as 
a constructive petition for an extension of time in any concurrent or future reply requiring a petition 
for an extension of time under this paragraph for its timely submission. Submission of the fee set forth 
in § 1. 17(a) will also be treated as a constructive petition for an extension of time in any concurrent 
reply requiring a f)etition for an extension of time under this paragraph for its timely sut>mission " 37 
C.F.a ^ 1,136(a)(3}. 

NOTE: "Amounts of twenty-five dollars or less wilt not be returned unless specifically requested vfithin a 
reasonable Vme, nor will the payer be notified of such amounts; amounts over twenty-five dollars may 
be returned by check or, if requested, by credit to a deposit account." 37 C.F.R. § 1.26(a). 

S Please charge, in the manner authorized above, the following additional fees that 
may be required by this paper and during the entire pendency of this application: 
SJ 37 C.F.R. § 1.492(a)(1), (2), (3), and (4) (filing fees) 

WARNING: Because failure to pay the national fee within 30 months without extension (37 C.F.R § 1.495(b)(2)) 
results in abandonment of the application, it would be best to always check the above box. 
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NOTE: 



Because additional fees for excess or muUiple dependent claims not paid on filing or oma^Ppr^^\^iion ^ ^ 0 8 OV UOl 
must only be paid or these claims cancelled by amendment prior to the expiration of the time period 
set for response by the PTO in any notice of fee deficiency (37 C.F.R. § 1.492(d)), it might be best 
not to authorize the PTO to charge additional claim fees, except possible when dealing with amendments 
after final action, 

0 37 C.F.R. § 1.17 (application processing fees) 

0 37 C.F.R. § 1.17(a)(1)-(5) (extension fees pursuant to § 1.136(a), 

□ 37 C.F.R. § 1.18 (issue fee at or before mailing of Notice of Allowance, 
pursuant to 37 C.F.R. § 1,31 1(b)) 

NOTE: Where an authorization to charge the issue fee to a deposit account has been filed before the mailing 
of a Notice of Allowance, the issue fee will be automatically charged to the deposit account at the time 
of mailing the notice of allowance. 37 C.F.R, § 1.311(b). 

NOTE: 37 C.F.R. § 1.2d(b) requires '^Notification of any change in loss of entitlement to small entity status must 
be filed in the application . . . prior to paying, or at the time of paying . . . issue fee, " From the wording 
of 37 C,F,R. § 1.28(b): (a) notification of change of status must be made even if the fee is paid as "other 
than a small entity" and (b) no notification is required if ttie change is to another small entity. 

El 37 C.F.R. § 1.492(e) and (f) (surcharge fees for filing the declaration 
and/or filing an English translaUon of an International ^plication later 
than 30 months after the privity date). 




Reg. No.:24^522 

Tel. No.: 603 ) 259-1800 

Customer No.: 2512 



SlOr^TURE OF PRACTmONjER 

Clarence A, Green 




{tyf>e or print name of practitioner) 
PERMAN & GREEN, LLP 



P.O. Address 
425 Post Road, Fairfield, -CT 06430 USA 
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IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 

Express Mail No.: EL627510644US 
Applicant (s) : George M. BROOKNER 

INTERNATIONAL APPLICATION NO.: PCT/USOO/12721 
INTERNATIONAL FILING DATE: 5/9/00 

TITLE: TECHNIQUE FOR SECURE REMOTE CONFIGURATION OF A 
SYSTEM 

ATTORNEY DOCKET NO.: 770P009542-US (PCT) 
Box PCT 

Commissioner of Patents 
Washington, D.C. 20231 

PRELIMINARY AMENDMENT 

Dear Sir: 

Please amend the above-identified, patent application as 
follows : 

IN THE SPECIFICATION: 

After the Title and before the first paragraph, please 
insert the following paragraph: 

This application claims the benefit of the earlier filed 
International Application No. PCT/USOO/12721, 

International Filing Date, May 9, 2000, which designated 
the United States of America, and which international 
application was published under PCT Article 21(2) in 
English as WO Publication No. WO 00/70503. 




Clarence A. Greep Reg. No.: 24,622 Date 
PERMAN & GREEN, LLP 

425 Post Road, Fairfield, CT 06430 

(203)259-1800 

Customer No.: 2512 
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IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 

EXPRESS MAIL NO.: EL627432156US 
APPLICANT: George M. Brookner 

INTERNATIONAL APPLICATION NO. : PCT/USOO/ 12721 

INTERNATIONAL FILING DATE: 5/9/00 

US SERIAL NUMBER: 10/009,206 EXAMINER: 

TITLE: TECHNIQUE FOR SECURE REMOTE CONFIGURATION OF A 

SYSTEM 

ATTORNEY DOCKET NO.: 770P009542-US(PCT) 

Commissioner of Patents 
BOXPCT 

Washington, D.C. 20231 



We are submitting herewith the executed Combined Declaration and Power of 
Attorney document for the above-referenced patent application. It is noted that 
we have not yet received the Notification of Missing Requirements. Enclosed is a 
check for $130.00 (surcharge for late filing of Combined Declaration and Power 
of Attorney). Please charge any additional fees due to our deposit account no. 16- 
1350. 



TRANSMTTTAL OF COMBINED DECLARATION 



AND POWER OF ATTORNEY DOCUMENT 



Dear Sir: 




Clarence A Green, Reg: No 
PERMAN & GREEN, LLP 
425 Post Road 
Fairfield, CT 06430 
(203)259-1800 



Customer No. 2515 



03/13/K)02 UEffljyiJE 00000008 10009506 



01 FCS154 



130.00 OP 
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DescriiDtion jq^q ^qq^^ puV/P'^C^ 0 8 2001 
TECHNIQUE FOR SECURE REMOTE CONFIGURATION OF A SYSTEM 

Technical Field 

The invention relates to a technique for system 
configuration, and more particularly to a technique for 
remotely configuring a system through a communications 
5 network in a secure manner . 

Background of the Invention 

Use of processor-controlled (P-C) products, 
e.g., personal and hand-held computers, wireless 
information devices, postage franking systems, etc. is 
ubiquitous. However, people may utilize these P-C 
products differently to satisfy their individual needs. 
For that reason, P-C product manufacturers offer 
different options to customers for them to individualize 
the products. Typically, when a customer orders a P-C 
product from a manufacturer, he/she specifies the desired 
options for the product. In response, the manufacturer 
starts with a basic pre -assembled system having a generic 
configuration, and adds the specified options thereto to 
customize the system. The manufacturer then ships the 
resulting system to the customer to fulfill the order. 

Summary of the Invention 

The customization by manufacturers of P-C 
25 products described above is beneficial to a customer in 
that the customer pays only for the product having the 
configuration specified by him/her, without overspending 
on some product features which the customer does not 
need. However, I have identified certain aspects of the 
30 prior art practice as being particularly disadvantageous. 
For example, after selecting a P-C product, a customer 
needs to wait for the manufacturer customization, which 
may take a long time because of a backlog. It is 




-2- 

particularly frustrating for a customer after he/she 
spends much time selecting the desired P-C product in a 
store and cannot immediately bring home the product 
because of the need of the manufacturer customization. 
5 I have recognized that in the manufacturer 

customization, the bulk of the time is expended on 
installing the software options specified by the customer 
in a basic system having a generic configuration. I have 
also recognized that most of the P-C products have a 

10 modem device therein or provide for similar capabilities 
for communicating data over a communications network. 
Thus, in accordance with the invention, the customer may 
be provided with the basic pre-assembled system having 
modem capabilities, and on his/her own download the 

15 specified software components onto the system from a 
server to customize the system. Advantageously, by 
shifting the customization burden onto the customer in 
accordance with the invention, the customer can be in 
possession of a P-C product as soon as the purchase 

20 thereof is consummated. In addition, the product 

manufacturer saves on the otherwise labor and time for 
installing the software options for the customer. 

In accordance with the invention, a server is 
employed for configuring P-C devices through a 

25 communications network. Records associated with the 

devices are stored in the server. On initial power up of 
one such P-C device, the P-C device automatically 
generates a request for configuration thereof to the 
seirver through the communications network. This request 

30 includes coded information resulting from encrypting at 
least an identifier, e.g., a serial number, identifying 
the P-C device, or alternatively from cryptographically 
signing at least part of the request. In response to 
such a request, the server locates a record associated 

35 with the P-C device, and verifies the identity of the P-C 
device based on the coded information. The record 
includes second information concerning a device 
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conf iguration specified by the customer. Only when the 
identity of the P~C device is verified, does the serv^er 
provide through the communications network to the P-C 
device information objects, e.g., software components 
5 and/or data, for realization of the specified 
configuration based on the second information. 

Brief Description of the Drawing 

Further objects, features and advantages of the 
invention will become apparent from the following 
detailed description taken in conjunction with the 
accompanying drawing, in which: 

Fig. 1 illustrates an arrangement for 
configuring a system in accordance with the inventions- 
Fig. 2 illustrates the format of a system 
record stored in a server in the arrangement of Fig. 1; 
and 

Fig. 3 illustrates a routine for providing 
software components from the server to the system to 
realize a specified system configuration. 

Detailed Description 

Fig. 1 illustrates an arrangement embodying the 
principles of the invention in which a processor- 
25 controlled (P-C) system may be customized through a 

communications network. By way of example, this system 
is illustratively a franking system, numerically denoted 
105, for generating postage indicia which serve as proof 
of payment of postage . 
30 In accordance with the invention, system 105 

when delivered to a user has a generic configuration, 
which includes processing unit 107 comprising one or more 
conventional processors, non-volatile memory 109, static 
random access memory (SRAM) 111, communications facility 
35 113 which includes a modem device or similar circuitry or 
network card, and necessary hardware components 115 for 
carrying out the generation of postage indicia. This 
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generic configuration allows subsequent system 
customization by the user to satisfy his/her individual 
needs. For example, in accordance with the invention, 
the user later may on his/her own integrate specified 
5 software options into system 105 to customize same. 
Thus, the manufacturer of system 105 in this instance 
does not customize the system for the user as in prior 
art. As a result, system 105 advantageously can be 
delivered to the user soon after the user places the 
10 order thereof. At the same time, the manufacturer saves 
on the otherwise labor and time for customizing system 
105 for the user. 
i=^= Server 13 0, which may be administered and 

;:i maintained by the manufacturer of system 105, provides 

□ 15 through communications network 145 the specified software 
:J; options to realize the user customization in accordance 

p with the invention. Communications network 145 may be, 

e.g., the Internet, a telephone network or other public 
Q or private network. Server 13 0 includes processor 133, 

Ul 20 memory 135, and interface 141 for establishing a 
;5 communication connection with the systems served thereby, 

□ e.g., system 105. When the user orders system 105 with 

sis I 

certain software and hardware options selected by the 
user, the manufacturer causes system 105 having a generic 

25 configuration and the selected hardware options delivered 
to the user. At the same time, the manufacturer causes 
server 130 to create a record therein, registering the 
selected software options and/or hardware options of 
system 105. Without loss of generality, in this instance 

30 the software options but not the hardware options are 
registered in such a record. To that end, database 137 
is maintained by server 130 in memory 135, which contains 
system records 139-1 through 139-N, associated with N 
different systems served by server 13 0, respectively, 

35 where N represents an integer greater than zero. Without 
loss of generality, let's assume here that system record 
139-1 is associated with system 105. 



Fig. 2 illustrates the format of a generic 
system record denoted 2 00. As shown in Fig. 2, record 
200 includes field 203 containing a system public key for 
decrypting messages from the system associated with the 
record in a manner described below, field 205 containing 
a serial number assigned to the system for identifying 
same, and field 207 contains identifiers indicating the 
software options selected by the user. 

When the user receives the package containing 
system 105 having the generic configuration, and selected 
hardware components for realizing the hardware options 
specified by the user, the user connects the selected 
hardware components to system 105 pursuant to the 
instructions provided by the manufacturer. To realize 
the software options specified by the user, programs such 
as booter 121 including basic input/output system (BIOS) 
functions, and loader 123 are provided and pre-stored in 
non-volatile memory 109 in system 105. On initial power 
up of system 105 and connection thereof to network 145 
through communication facility 113, booter 121 is invoked 
which performs conventional system start-up functions 
which include, among others, causing loader 123 to be 
copied into SRAM 111 at a specified location to which a 
program vector points. Directed by the program vector, 
processing unit 107 executes the code of loader 123 in 
SRAM 111. 

Instructed by the code of loader 123, unit 107 
causes communications facility 113 to establish a 
communication connection with server 13 0 through network 
145. Unit 107 transmits a configuration request for 
software components from server 13 0 to realize the 
specified software options. However, in accordance with 
an aspect of the invention, security measures are 
implemented to ensure that system 105 is a legitimate 
system to receive the software components from server 
130. For example, a cryptographic methodology may be 
implemented to encrypt and/or cryptograph! cally sign 
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certain information in the request from system 105. The 
success by server 13 0 in decrypting the resulting 
encrypted information and/or authenticating the resulting 
digital signature verifies the identity and legitimacy of 
5 system 105. One such cryptographic methodology is the 
RSA methodology, named after its developers, Rivest, 
Shamir and Adleman. For details on the RSA methodology, 
one may refer to: R. Rivest et al . , "A Method for 
Obtaining Digital Signatures and Public Key 
10 Cryptosystems, " Communications of the ACM , Vol. 21, No. 

2, February 1978. The RSA methodology involves a public 
key algorithm which uses a private key and a public key 
for data encryption. Unlike a private key which is 
securely protected from the public, a public key can be 

15 published and made known to the public. The keys for the 
RSA algorithm are generated mathematically, and are 
computational inverses to each other. The success of the 
RSA methodology depends on the use of very large numbers 
for the keys. 

20 Thus, for example, in implementing the RSA 

methodology here, a key pair consisting of system public 
key 125 and system private key 127 are assigned to system 
105, which are pre-stored in memory 109. In addition, as 
mentioned before a serial number, denoted 129, is 

25 assigned to system 105 to identify same, which is pre- 
stored in memory 109. In this instance, the 
aforementioned configuration request by system 105 
includes information concerning (a) system public key 125 
and (b) serial number 129 which is encrypted using system 

30 private key 127 in accordance with the RSA methodology. 

Upon receiving the configuration request 
through interface 141, as indicated at step 302 in Fig. 

3, processor 133 at step 305 searches database 137 for 
any system record having field 203 thereof matching 

35 system public key 125 in the request. If no such record 
is found, processor 133 at step 3 08 denies the 
configuration request. Otherwise, if any such record 
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(e.g., record 139-1 associated with system 105 in this 
instance) is found, processor 133 at step 311 decrypts 
the encrypted serial number in the request using received 
system public key 125 or alternatively the matching 
5 system public key in field 203 of the record, in 

accordance with the RSA methodology. Processor 133 at 
step 314 determines whether the resulting serial number 
matches that in field 205 of the record. If they do not 
match, processor 133 at step 317 denies the configuration 

10 request. Otheirwise, if they match, processor 133 at step 
320 reads from field 207 of the record the identifiers 
indicating the software options specified by the user for 
installation in system 105. Based on such identifiers, 
processor 133 at step 323 retrieves from software 

15 component storage 143 those software components for 
realizing the specified software options. To ensure 
secure transmission, and prevent unauthorized use, of 
such software components to system 105, processor 133 at 
step 326 encrypts the software components using server 

20 private key 145, in accordance with the RSA methodology. 
Processor 13 3 at step 32 9 transmits the encrypted 
software components to system 105 through the established 
communication connection. 

After receiving the encrypted software 

25 components, processing unit 107 in system 105 utilizes 
server public key 152, which corresponds to server 
private key 145 and is pre-stored in memory 109, to 
decrypt the received software components. The resulting 
software components, which contain software 

30 identifications (IDs) in their headers, are then loaded 
into SRAM 111, in accordance with a program vector table. 
This program vector table, e.g., in the form of a memory 
map, specifies the memory locations in SRAM 111 for the 
respective software components identified by their 

35 software IDs, and thus the order of execution of these 

software components. As processing unit 107 executes the 
downloaded software components, the specified software 
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options are realized. 

The foregoing merely illustrates the principles 
of the invention. It will thus be appreciated that those 
skilled in the art will be able to devise numerous other 
5 arrangements which embody the principles of the invention 
and are thus within its spirit and scope. 

For example, the invention is disclosed in the 
context of an initial configuration of system 105 after 
it is delivered to the user. However, it is apparent 
10 from the disclosure heretofore that the inventive 

methodology is equally applicable to a re -configuration 
of the system after the initial configuration. In thalt 
case, loader 123 can be re -invoked to download additional 
software components from server 130 to modify the initial 
15 configuration. 

Moreover, in the disclosed embodiment, software 
components are downloaded to system 105 from server 130 
to realize desired system options. It is apparent that 
selected data, e.g., those concerning the user and/or 

2 0 his/her preferences, may also be downloaded to the system 

to customize same. 

In addition, in the disclosed embodiment, 
server 130 maintains system record 200 for each system 
served thereby. The information in field 207 of record 
25 2 00 enables server 13 0 to keep track of the current 

configuration of the system. Server 13 0 may also rely on 
the software IDs of the downloaded software components to 
keep track of the current configuration of the system. 
Such software IDs may contain version numbers of the 

3 0 respective downloaded software components and may also 

form part of record 200. When any new versions of the 
downloaded software components become available, with the 
knowledge of the current version number of each 
downloaded software component in the system, server 130 
35 can effectively inform the user of such new versions for 
upgrading purposes. Moreover, the software IDs 
identifying the downloaded software components currently 
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installed in the system may also be cataloged and stored 
in the system itself. In that case, a re-configuration 
of the system can be accomplished in a more secure manner 
by downloading additional software components together 
5 with an authorization code from server 130. As described 
in PCT International Publication No. WO 99/66422, 
published on December 23, 1999, such an authorization 
code may be derived by seirver 130 from, among others, the 
serial number of the system and new software IDs 

10 identifying the additional software components. After 
receiving the additional software components including 
the software IDs in their headers, and the authorization 
code, the system independently generates an authorization 
code based on the received software IDs and the serial 

15 number stored in the system, . Only if the generated 
authorization code corresponds to the received 
authorization code, is the system allowed to install the 
additional software components therein. 

Further, in the disclosed embodiment, the 

2 0 configuration request by system 105 includes information, 
e.g., the serial number identifying system 105, which is 
encrypted. However, as mentioned before, such 
information may be cryptographically signed using the RSA 
or other cryptographic methodology such as the digital 

25 signature algorithm (DSA) or Elliptic Curve algorithm, 
instead. In that case, the authentication of the 
resulting digital signature verifies the identity of 
system 105. 

Finally, server 130 and system 105 are 

30 disclosed herein in a form in which various functions are 
performed by discrete functional blocks. However, any 
one or more of these functions could equally well be 
embodied in an arrangement in which the functions of any 
one or more of those blocks or indeed, all of the 

35 functions thereof, are realized, for example, by one or 
more appropriate memories, and/or appropriately 
programmed processors. 
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Claims 

1. Apparatus for serving a plurality of devices 
through a communications network, the apparatus 
5 comprising: 

a memory for storing a plurality of records 
associated with the devices, respectively; 

an input element for receiving from a selected 
device a request for configuration thereof through the 
10 communications network, the request including coded 
information; 

a processor responsive to the request for locating a 
record associated with the selected device, and verifying 
an identity of the selected device based on the coded 

15 information, the record including second information 
concerning a selected configuration; and 

an output element for providing through the 
communications network to the selected device information 
objects for realization of the selected configuration 

20 based on the second information when the identity of the 
selected device is verified. 



2 . The apparatus of claim 1 wherein the coded 
information including encrypted information concerning 

25 the identity of the selected device. 

3 . The apparatus of claim 2 wherein the encrypted 
information concerns a. serial number of the selected 
device . 

30 

4 . The apparatus of claim 2 wherein the encrypted 
information is encrypted in accordance with a public key 
algorithm. 



35 



5 . The apparatus of claim 1 wherein the coded 
information including a digital signature resulting from 
cryptographically signing at least part of the request. 
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6. The apparatus of claim 1 wherein the 
information objects include software components. 

7. The apparatus of claim 1 wherein the 
5 information objects include data. 

8- Apparatus configurable by a server through a 
communications network, the apparatus comprising: 
storage for storing a cryptographic element; 
10 a processor for generating a request which includes 

therein coded information for verification by the server 
of an identity of the apparatus, the coded information 
being generated using the cryptographic element; 

an interface for receiving information objects for 
15 configuring the apparatus from the server through the 

communications network when the identity of the apparatus 
is verified by the server; 
a memory; and 

a loader for directing the information objects to be 
loaded in the memory in accordance with a predetermined 
plan. 



20 



25 



9. The apparatus of claim 8 wherein the 
cryptographic element includes a private key. 

10. The apparatus of claim 8 wherein the request is 
automatically generated on an initial power up of the 
apparatus . 

11. The apparatus of claim 8 wherein the coded 
information including a digital signature resulting from 
cryptographically signing at least part of the request. 

12. The apparatus of claim 8 comprising a franking 
35 system. 



30 



13 . The apparatus of claim 8 wherein the 
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information objects include software components. 



14 . The apparatus of claim 8 wherein the 
information objects include data. 

5 

15. Apparatus for serving a plurality of devices 
through a communications network, the apparatus 
comprising: 

a memory for storing a plurality of records 
10 associated with the devices, respectively; 

an input element for receiving from a selected 
device a request for configuration thereof through the 
communications network, the request including a 
cryptographic element, and first information concerning a 
15 first identifier identifying the selected device, the 
first information being encrypted; 

a processor for selecting a record based on the 
cryptographic element, the selected record including a 
second identifier and configuration information, the 
20 processor determining whether the second identifier 
corresponds to the first identifier obtained by 
decrypting the first information using the cryptographic 
element; and 

an output element for causing the selected device to 
25 be configured based on the configuration information when 
it is determined that the second identifier corresponds 
to the first identifier. 

16. The apparatus of claim 15 wherein the 
3 0 cryptographic element includes a public key. 

17. The apparatus of claim 15 wherein the first 
identifier includes a serial number of the selected 
device . 

35 

18 . The apparatus of claim 15 wherein the first 
information is encrypted in accordance with a public key 
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algorithm. 

19. A method for use in an apparatus for serving a 
plurality of devices through a communications network, 
5 the method comprising: 

storing a plurality of records associated with the 
devices, respectively; 

receiving from a selected device a request for 
configuration thereof through the communications network, 
10 the request including coded information; 

in response to the request, locating a record 
associated with the selected device; 

verifying an identity of the selected device based 
on the coded information, the record including second 
15 information concerning a selected configuration; and 

providing through the communications network to the 
selected device information objects for realization of 
the selected configuration based on the second 
information when the identity of the selected device is 
2 0 verified. 

20. The method of claim 19 wherein the coded 
information including encrypted information concerning 
the identity of the selected device. 

25 

21. The method of claim 20 wherein the encrypted 
information concerns a serial number of the selected 
device. 

30 22. The method of claim 20 wherein the encrypted 

information is encrypted in accordance with a public key 
algorithm. 

23. The method of claim 19 wherein the coded 
35 information including a digital signature resulting from 
crypt ographically signing at least part of the request. 
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24. The method of claim 19 wherein the information 
objects include software components. 

25. The method of claim 19 wherein the information 
objects include data. 

26. A method for use in an apparatus configurable 
by a server through a communications network, the 
apparatus including a memory, the method comprising: 

storing a cryptographic elements- 
generating a request which includes therein coded 

information for verification by the server of an identity 

of the apparatus, the coded information being generated 

using the cryptographic element; 

receiving information objects for configuring the 

apparatus from the server through the communications 

network when the identity of the apparatus is verified by 

the server; and 

loading the information objects in the memory in 

accordance with a predetermined plan. 

27. The method of claim 26 wherein the 
cryptographic element includes a private key. 

28. The method of claim 26 wherein the request is 
automatically generated on an initial power up of the 
apparatus . 

29. The method of claim 26 wherein the coded 
information including a digital signature resulting from 
cryptographically signing at least part of the request. 

30. The method of claim 26 wherein the information 
objects include software components. 

31. The method of claim 26 wherein the information 
objects include data. 
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32 - A method for use in an apparatus for serving a 
plurality of devices through a communications network, 
the method comprising: 

storing a plurality of records associated with the 
devices , respectively; 

receiving from a selected device a request for 
configuration thereof through the communications network, 
the request including a cryptographic element, and first 
information concerning a first identifier identifying the 
selected device, the first information being encrypted; 

selecting a record based on the cryptographic 
element, the selected record including a second 
identifier and configuration information; 

determining whether the second identifier 
corresponds to the first identifier obtained by 
decrypting the first information using the cryptographic 
element; and 

causing the selected device to be configured based 
on the configuration information when it is determined 
that the second identifier corresponds to the first 
identifier. 

33. The method of claim 32 wherein the 
cryptographic element includes a public key. 

34. The method of claim 32 wherein the first 
identifier includes a serial number of the selected 
device. 

35. The method of claim 32 wherein the first 
information is encrypted in accordance with a public key 
algorithm. 
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